What would be the best and the simplest way of utilizing a range of public IP’s to NAT clients.
-
Src-nat to range of adresses:
chain=srcnat action=src-nat to-addresses=x.y.z.0/24
src-address=10.10.0.0/20 out-interface=WAN -
Netmap /24 to /24
for each /24 subnet, one tcp rule, one udp rule with smaller range of ports.
and one masquerade rule for non-port traffic. -
Netmap /20 to /24
I heard people doing this and not complaining. Will it work if you netmap bigger subnet to a smaller one, and how does that map.
In this case you don’t have to divide ports , you make one TCP rule with complete port range, and same for UDP, plus masquerade the non-ported traffic. You end up with only 3 rules in addition to 16+16+1 total of 33 rules for /24 to /24 netmap.
The point is utilizing the best way public ip addresses to proportionally map clients, using the simplest way and less RuterOS resources.
Thanks in advance for any comments.